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REMARKS 

Applicants appreciate the thorough examination of the present application as 
evidenced by the Office Action. Applicants submit the present application is in form for 
allowance for at least the reasons discussed below. 

The Claim Objections: 

Claims 1-25 are objected to because of various alleged informalities in Claims 1, 3, 7, 
9, 12, 13, 19 and 25. Office Action, pp. 2-3. To expedite prosecution of this application, the 
amendments suggested by the Examiner have been included in the amended claims. 
Accordingly, Applicants request withdrawal of the objection as obviated. 

The Prior Art Rejections: 

Claims 1-8, 12-20 and 25 stand rejected as anticipated under 35 U.S.C. § 102(e) over 
United States Patent Application Publication No. 2003/01201593 to Bansal et al. ( M Bansal M ). 
Office Action, p. 3. Claims 9-10 and 21-23 stand rejected as obvious under 35 U.S.C. § 103 
over Bansal in light of United States Patent No. 5,991,882 to OConnell ("O'Connell"). 
Office Action, p. 1 1 . 

Independent Claims 1, 13 and 25 Are Patentable: 

In rejecting independent Claim 1, among other things, the Office Action asserts that 
Bansal at paragraph 423 discloses account privileges management as a "user can subscribe to 
content" and that paragraph 424 discloses a confirmation request that can be "seen as a 
challenge question since the user is required to act upon the request to confirm the user's 
identity." Office Action, pp. 4-5. Applicants disagree. 

As an initial matter, paragraph 423 of Bansal relates to a user registering for a 
"subscription management service" that sends "categorized e-mail to a managed distribution 
list." In other words, a user acts to add him or her self to a listserv so that they will be 
included on the distribution list and receive associated notifications and the like sent to 
subscribers to the list. Bansal, Paragraphs 419-423. As further described at paragraph 424, a 
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confirmation may be required to help "prevent anonymous or unauthorized subscriptions." In 
other words, this section would appear to indicate the system, after receiving a request, may 
send an email to a known email associated with the request and await a reply to confirm it 
was actually that user that submitted the request. 

In contrast, Claim 1 recites a receiving a request associated with "password and/or 
account privileges management." As is clear from the definitions for "privileges (referring to 
access privileges)" in the Microsoft Computer Dictionary (copy of excerpts attached) and the 
use of this term, for example, in the publication, DoD 5200.28-STD, "Department of Defense 
Trusted Computer System Evaluation Criteria" (printout of excerpts of this and other 
webpages using the term attached), "privileges" refer to security related features of what a 
user account may access, not to what they choose to access using those privileges. In 
contrast, as discussed above, paragraph 423 of Bansel merely relates to registration for a 
listserv that the user presumably already had privileges to use. Thus, subscribing for a list, 
contrary to the assertion in the Office Action, cannot be reasonably interpreted as "account 
privileges management." Final Action, p. 4. Accordingly, the rejection of independent Claim 
1 and the claims depending therefrom should be withdrawn for at least these reasons. 

Furthermore, Claim 1 also recites a responsive query including a "challenge question 
to validate" a user request to a network password and/or account privileges management self- 
service application. In other words, the validation is used responsive to a user attempting to 
access the self-service application. As further recited in Claims 9 and 10, the response to the 
challenge then controls access to services of the application. In contrast, the cited sections of 
Bonsel are addressed to confirming that a request to be added to a list from a user having such 
a privilege was actually received from that user by sending a confirming email. In other 
words,no "challenge question" is needed as the confirmation is sent to a known email that is 
presumed to belong to the actual user, just in case someone else has presented themselves as 
the user. As such, even were the confirmatory email to be considered a "challenge question" 
it only serves such a function when it is not sent to the user that submitted the registration 
request. Accordingly, the rejection of independent Claim 1 and the claims depending 
therefrom should be also withdrawn for at least these additional reasons. 
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Independent Claims 13 and 25 contain corresponding recitations. Accordingly, the 
rejections of independent Claims 13 and 25 and the claims depending therefrom should be 
withdrawn for at least substantially similar reasons. 

The Dependent Claims: 

The dependent claims are patentable at least based on the patentability of the 
independent claims from which they depend. In addition, various of the dependent claims are 
also separately patentable. For example, newly added Claims 29-31 each recite "wherein the 
challenge question comprises the user's mother's maiden name, the user's favorite color, the 
user's favorite brand of cereal and/or at least a portion of the user's telephone number." Such 
recitations are supported, for example, by the specification at page 1, lines 28-29 and Figure 
9B. The confirmatory email of Bansal clearly does not include any of the recited questions. 
Accordingly, Claims 29-31 are also separately patentable for at least these reasons. Newly 
added Claims 26-28 recite that the self-service application is for network password 
management. The Office Action does not even allege such is taught by BansaL Accordingly, 
Claims 26-28 are also separately patentable for at least these reasons. 

Applicants note the rejections of Claims 9 and 10 further cite to O'Connell, which 
relates to an automated password reset system using stored questions and answers to control 
resetting of a user's password. Thus, O'Connell, unlike the confirmatory email of Bansal 
relied on in rejecting the independent claims, relates to a password management application 
for a computer user's account, not to management of the use of the benefits (listserv 
subscriptions of Bansal) of the user's account. As discussed above with respect to the 
patentability of the independent claims, such are distinct purposes. Therefore, one of skill in 
the art would not be motivated to incorporate the question and answer procedure of O'Connell 
into the list registration system of Bansal. Instead of saving questions and associated answers 
generated by a user, Bansal simply uses a known email for the user, or separate log-in through 
a website, to confirm registration. In neither case is there any suggestion of issuing 
challenges to a user, thus making the system of O'Connell an unnecessary addition to the 
system of Bansal that would merely increase the burden to a user of using the system of 
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Bansal. Thus, Claims 9 and 10 are also separately patentable for substantially the same 
reasons as Claims 26-28 are separately patentable. 



Conclusion 

In light of the above remarks, Applicants respectfully submit that the above-entitled 
application is now in condition for allowance. Favorable reconsideration of this application is 
respectfully requested. If, in the opinion of the Examiner, a telephonic conference would 
expedite the examination of this matter, the Examiner is invited to call the undersigned 
attorney at (919) 854-1400. 



tfully submi 




Robert W. Ulatz 
Registration No. 3£T,81 1 
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DECEMBER 1985 



December 26, 1985 

FOREWORD 



This publication, DoD 5200.28-STD, "Department of Defense Trusted Computer 
System Evaluation Criteria," is issued under the authority of an in accordance 
with DoD Directive 5200.28, "Security Requirements for Automatic Data 
Processing (ADP) Systems," and in furtherance of responsibilities assigned by 
DoD Directive 5215.1, "Computer Security Evaluation Center." Its purpose is to 
provide technical hardware/firmware/software security criteria and associated 
technical evaluation methodologies in support of the overall ADP system 
security policy, evaluation and approval/accreditation responsibilities 
promulgated by DoD Directive 5200.28. 

The provisions of this document apply to the Office of the Secretary of Defense 
(ASD), the Military Departments, the Organization of the Joint Chiefs of Staff, 
the Unified and Specified Commands, the Defense Agencies and activities 
administratively supported by OSD (hereafter called "DoD Components"). 

This publication is effective immediately and is mandatory for use by all DoD 
Components in carrying out ADP system technical security evaluation activities 
applicable to the processing and storage of classified and other sensitive DoD 
information and applications as set forth herein. 

Recommendations for revisions to this publication are encouraged and will be 
reviewed biannually by the National Computer Security Center through a formal 
review process. Address all proposals for revision through appropriate 
channels to: National Computer Security Center, Attention: Chief, Computer 
Security Standards. 

DoD Components may obtain copies of this publication through their own 
publications channels. Other federal agencies and the public may obtain copies 
from: Office of Standards and Products, National Computer Security Center, 
Fort Meade, MD 20755-6000, Attention: Chief, Computer Security Standards. 



Donald C. Latham 

Assistant Secretary of Defense 

(Command, Control, Communications, and Intelligence 



Least Privilege - This principle requires that each subject in a 
system be granted the most restrictive set of privileges (or 
lowest clearance) needed for the performance of authorized 
tasks. The application of this principle limits the damage 
that can result from accident, error, or unauthorized use. 
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ACCESS RIGHTS DEFINITION (continued): ... In the administration of a multi-use 
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Generally, a system administrator or, in the case of network resources such as acces(§ 
privileges to users. System software then automatically enforces these privileges. 
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Definition of: least privilege 

A basic principle in information security that holds that entities (people, processes, 
devices) should be assigned the fewest privileges consistent with their assigned duties and 
functions. For example, the restrictive "need-to-know" approach defines zero access by 
default and then opens security as required. All data in a corporate network would be off- 
limits except to specific people or groups (see role-based access control ). 

In contrast, a less-restrictive strategy opens up all systems and closes access as required; 
for example, allowing employees access to all systems except human resources and 
accounting, which would be limited to only employees in those departments. 

RELATED TERMS: 

role-based access control 
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optimum performance. Peripherals can be con- 
nected while the computer is running (hot plug- 
ging) and are automatically assigned a unique 
address (auto-addressing). Developed by Digital 
Equipment Corporation, the ACCESS.bus com- 
petes with Intel's USB. See also bidirectional, bus, 
daisy chain, hot plugging, input/output port, 
peripheral. Compare USB. 

access code Nak'ses kocY\ n. iee password. 

access control \ak'ses ksn-tror\ n. The mecha- 
nisms for limiting access to certain items of infor- 
mation or to certain controls based on users' 
identity and their membership in various pre- 
defined groups. Access control is typically used by 
system administrators for controlling user access to 
network resources, such as servers, directories, 
and files. See also access privileges, system admin- 
istrator. 

access control list \ak N ses ksn-trol' list\ n. A list 
associated with a file that contains information 
about which users or groups have permission to 
access or modify the file. Acronym: ACL (AX-L'). 

accessibility \ak-ses x 3-bilVte\ n. The quality of a 
system incorporating hardware or software that 
makes it usable by people with one or more phys- 
ical disabilities, such as restricted mobility, blind- 
ness, or deafness. 

access 'mechanism \ak'ses mek^-niz-smY n. 
1. The disk drive components that move the 
read/write head(s) to the proper track of a 
magnetic disk or optical disc. 2. A circuit that 
allows one part of a computer system to send 
signals to another part. See also disk controller. 
3. In .programming, the means by which an 
application can read from or write to a re- 
source. Also called access method. 

access method \ak'ses meuYsd\ n. See access 
mechanism (definition 3). 

access number Xak'ses nunfbarV n. The tele- 
phone number used by a subscriber to gain access 
to an online service. 

accessory Nak-ses'ar-eA n. See peripheral. 

access path Xak'ses patfA n. The route followed 
by an operating system to find the location of a 
stored file. The access path begins with a drive or 
volume (disk) designator, continues through a 
chain of directories and subdirectories, if any, and 




ends with the filename. C:\books\diction\ 
start.exe is an example of an access path. 

access privileges Xak'ses priv^a-b-jgz, priVb-j3z\ 
n. The type of operations permitted a given user 
for a certain system resource on a network or a file 
server. A variety of operations, such as the ability 
to access a server, view the contents of a directory, 
open or transfer files, and create, modify, or delete 
files or directories, can be allowed or disallowed 
by the system administrator. Assigning access priv- 
ileges to users helps the system administrator to 
maintain security on the system, as well as the pri- 
vacy of confidential information, and to allocate 
system resources, such as disk space. See also file 
protection, file server, permission, system admin- 
istrator, write access. 

access provider \ak'ses pra-vFdsrX n. See ISP. 

access rights \ak'ses rlts*\ n. The permission to 
view, enter, or modify a file, folder, or system. 

access speed \ak'ses sped v \ n. See access time. 

access time \ak'ses tlm s \ n. 1. The amount of 
time it takes for data to be delivered from memory 
to the processor after the address for the data has 
been selected. 2. The time needed for a read/write 
head in a disk drive to locate a track on a disk. 
Access time is usually measured in milliseconds 
and is used as a performance measure for hard 
disks and CD-ROM drives. See. also read/write 
head, seek time, settling time, wait state. Compare 
cycle time. 

account \9-kount'\ n. 1. A record-keeping 
arrangement used by the vendor of an online ser- 
vice to identify a subscriber and to maintain a 
record of customer usage for billing purposes. 2. A 
record kept by local area networks and multi-user 
operating systems for each authorized user of the 
system for identification, administration, and secu- 

. rity purposes. 

accounting file \3-koun'teng fTT\ n. A file gener- 
ated by a printer controller that keeps track of the 
number of pages printed per job as well as the 
user that requested the print job. 

accounting machine \o-koun'teng m9-shen v \ n. 
1. One of the earliest applications of automatic 
data processing, used in business accounting pri- 
marily during the 1940s and 1950s. The first 
accounting machines were nonelectronic and 



priorities that indicate how soon they must be 
transmitted. See also interrupt. 

Priority Frame \pri-6rVte franf\ n. A telecom- 
munications protocol developed by Infonet and 
Northern Telecom, Inc., designed to carry data, 
facsimile, and voice information. 

privacy \prl'v3-se\ n. The concept that a user's 
data, such as stored files and e-mail, is not to be 
examined by anyone else without that user's per- 
mission. A right to privacy is not generally recog- 
nized on the Internet. Federal law protects only 
e-mail in transit or in temporary storage, and only 
against access by Federal agencies. Employers 
often claim a right to inspect any data on their sys- 
tems. To obtain privacy, the user must take active 
measures such as encryption. See also encryption, 
PGP, Privacy Enhanced Mail. Compare security. 

Privacy Enhanced Mail XprFvs-se en-hansd v 
mal'\ n. An Internet standard for e-mail systems 
that use encryption techniques to ensure the pri- 
vacy and security of messages. Acronym: PEM (P^E- 
MO. See also encryption, standard. Compare PGP. 

Private Branch Exchange \prFvat branch' eks- 
chanf \ n. SeePBX. ■ 

private channel \prFvst chan'slX n. In Internet 
relay chat (IRC), a channel reserved for the use of 
a certain group of people. Private channel names 
are hidden from view by the public at large. Also 
called secret channel. See also IRC. 

Private Communications Technology \prFvat 
ks-myoiy ns-ka 'shsnz tek-nor^-jeA n. A specifica- 
tion designed to secure general-purpose business 
and personal communications on the Internet, and 
including features such as privacy, authentication, 
and mutual identification. 

private folders \prFv3t fol'darzN w.Tn a shared 
network environment, those folders on a user's 
computer that are not currently accessible by other 
users on the network. Compare public folders. 

private key Vpri'vat ke v \ n. One of two keys in 
public key encryption. The user keeps the private 
key secret and uses it to encrypt digital signatures 
and to decrypt received messages. See also public" 
key encryption. Compare public key. 

private line \prFvat lTn'\ n. See dedicated line 
(definition 1). 

privatization \prFv9-t3-.za'sh3n\ n. Generally, 
the process of turning something over from gov- 



ernment to commercial industry control. In the 
context of computer science and the Internet, the 
term refers to the government's turning over of 
various Internet backbones to private industry. For 
example, control of NSFnet was passed from the 
government to private business in 1992. 
privileged instruction Xpriv'a-bjd in-struk'shsnX 
n. An instruction (usually a machine instruction) 
that can be executed only by the operating system. 
Privileged instructions exist because the operating 
system needs to perform certain operations that 
applications should not be allowed to perform; 
therefore, only the operating-system routines have 
the necessary privilege to execute these particular 
instructions. 

privileged mode NprivVlajd rrKxTV n. A mode of 
execution, supported by the protected mode of 
the Intel 80286 and higher microprocessors, in 
which software can carry out restricted operations 
that manipulate critical components of the system, 
such as memory and input/output ports (chan- 
nels). Application programs cannot be executed in 
privileged mode; the heart (kernel) of the OS/2 
operating system can be, as can the programs 
(device drivers) that control devices attached to 
the system. 

privileges \priv'3-l3-jsz, privla-jszX n. See access 
privileges. 

PRN \P"R-N'\ n. The logical device name for 
printer. A name reserved by the MS-DOS operat- 
ing system for the standard print device. PRN usu- 
ally refers to a system's first parallel port, also 
known as LPT1. 

probability Xprob^-bil's-teA n. The likelihood 
that an event will happen, which can often be esti- 
mated mathematically. In mathematics, statistics 
and probability theory are related fields. In com- 
puting, probability is used to determine the likeli* 
hood of failure or error in a system or device. 

problem solving Nprol^bm soPveng\ «. 1- The 
process of devising and implementing a strategy 
for finding a solution or for transforming a less 
desirable condition into a more desirable one. 
2. An aspect of artificial intelligence wherein the 
task of problem solving is performed solely by a 
program. See also artificial intelligence. 

procedural language \pra-sef jar-9l lang^waj\ «• 
A programming language in which the basic pro- 



